CVE-2014-3564

Related Files

Mandriva Linux Security Advisory 2014-160

Posted Sep 2, 2014

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2014-160 - A heap-based buffer overflow in gpgme before 1.5.1 could allow a specially crafted certificate to cause crashes or potentially cause arbitrary code execution.

tags | advisory, overflow, arbitrary, code execution

systems | linux, mandriva

advisories | CVE-2014-3564

SHA-256 | 3a2632bb92e57a77a1c220ac77855a0de178391c091931127952d4759be91148

Download | Favorite | View

Debian Security Advisory 3005-1

Posted Aug 14, 2014

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3005-1 - Tomas Trnka discovered a heap-based buffer overflow within the gpgsm status handler of GPGME, a library designed to make access to GnuPG easier for applications. An attacker could use this issue to cause an application using GPGME to crash (denial of service) or possibly to execute arbitrary code.

tags | advisory, denial of service, overflow, arbitrary

systems | linux, debian

advisories | CVE-2014-3564

SHA-256 | 87df4b9703f2842f1b062b2d784fd8523fc34d6925ec04297b57befecdaecbca

Download | Favorite | View

Ubuntu Security Notice USN-2307-1

Posted Aug 7, 2014

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2307-1 - It was discovered that GPGME incorrectly handled certain certificate line lengths. An attacker could use this issue to cause applications using GPGME to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2014-3564

SHA-256 | 60fb41dd87963da28da51b4201d54af49504ba07635d0f484c0bb4ff9dc5bf53

Download | Favorite | View